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THE INFORMATION CONTAINED IN THIS FACSIMILE IS INTENDED FOR THE NAMED RECIPIENTS ONLY. IT MAY CONTAIN PRIVILEGED AND 
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Dear Examiner Khoshnoodi, 

Attached please find proposed amendments to the claims of the present application. I 
would like to request a telephone interview to discuss about the amended claims. I will call 
you on Monday (11/14/2011) to see your availability. 

Thank you 

Jae Y. Park 

Attorney for Applicant 
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Proposed Amendments To Claims tor Examiner Interview 



| 1 . (.Qirrently amended) A network security system for permitting at.nist.ed process iis_ing_^ 

a firewall, the firewall protecting a corresponding network connection of a computer to a 
network by setting restrictions on information communicated between networks, comprising 

a port monitoring unit [[fori] extracting information about a server port being used by a 
network communication program; 

an internal permitted program storage [[for]] storing a list of programs permitted te4*av-e 

, 1 ! b\ the firewall, wherein the internal permitted program storage adds a 

program to the list by extracting information about the program for which communication is jo _ 
U: permitted by the firewall and retii i - . leriiui the extracted information in the li i - . t ^and 

a firewall flexible device [[fori] determining whether the network communication 
program is registered in the list of programs stored in the internal permitted program storage^ _ 
[[and]] 

an int e rnal p e rmitt e d port storage registering wherein the firewall_flexible device _ _ 



auromaticallv storin g the extracted ii 
^e_if the firewall flexible 



i about the 
lcs mat tire 



registered in the list of program 
wherein the firewall fie} 
packet of inbound traffic has be 
the server port and blocks the p 
k us I cp I d oes noL match willi i 



:s whether a destination port of a 
ket of inbound traffic if the destination port fe 



2 u'urreiiily amended l The noiwork seeiirity systern as_set forth jnclaim l_^herein_the _ 

program storage, includes information about at least one of a program name, an entire path of the 
program, and a program hash value. 

3. (Qirrently amended.) The network security system as set forth in claim 1 , wherein the 

infonnation about the server port , which in registered in the internal permitted port momgu, ^_ 

includes infonnation about at least one of an entire path of the program, a protocol, and a port. 

I n'lirrcnlly amended i \ i clwoit. secunly mell io, 1 ol' perm 1 1 1 n ig a I ri is I ed process using 
a firewall, the firewall protecting a corresponding network connection of a computer to a 
network by setting restrictions on information communicated between networks, comprising: 
storing in an internal permitted program storage a list, of programs permitted f*+4«¥ts 

--• ,1.- --! by tlie firewall, 
extracting information about a server port, being used by a network communication 
program; k 
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; determining whether the network communication program is registered in the list of 

programs stored in the internal permitted program storage; 

t e g ir . t e nng automatica I lv, storing the . extracted information about the e xtracted sgryerjyrt 
in an internal permitted port storage if the network communication program js_ determined to be 
registered in the lisl of programs stored in ihe internal permitted program storage; 

determining whether a destination port of a packet of inbound traffic has b ee n regist e r e d 
in the internal pomiittod port i jtomge matchcs with the server port ; and 

blocking the packet of inbound traffic if the destination port has not boon rogiatorod docs 
not match with the server port . 

5-7. (Canceled) 

8. (Previously presented) The network security method as set forth in claim 4, wherein 
the information about the program includes information about at least one of a program name, an 
entire path of the program, and a program hash value. 

9. (Current ly amended ) ThejietvTOrksecurity method as_set forth jn claim 4^wteeinthe j 

information jboutef the seryer^ortmcludes information about at least oneofan entire jsathof r-. 

the program, a protocol, and a port. 

1 0. (Currently amended) A computer recordable device for performing a network security |f 

method using a firewall, the device storing a program for executing the method, the_method_ ij. 

comprising: 

storing in an internal permitted program storage a list of programs permitted te-baw 
>urvi.7 s .i- -r !.:-. i'.a.::;!'.T'.>"i by the firewall: 

extracting information about a server port being used by a network communication 
program; 

determining whether llu neiwoik com mi it ite.it tot i program is registered in the list of 
programs stored in the internal permitted prog mm storage; 

ruai»turii ^ automatically storing the eMraeted i i formal ion about the e ' Hlniolod scrycrport 

in an internal permitted port slot a;'..' -fthe u iv,\ .rl communication program is detenu mod to be 
registered in the list of programs stored in the internal permitted program storage; 

determining whether a destination port of a packet of inbound traffic h 
in th e int e rnal p e rmitt e d port storage - matches w i th the server port ; and 

blocking the packet of inbound traffic if the destination porth, 
not match with the server port . 
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[ 11. (Currently amended) The network security system as set forth in claim 1 , wherein the 

firewall flexible device allows the packet of inbound traffic to bypass the firewall if the 
des ti n ation port has b ee n r e gist e r e d matches with the server port . 

1 2. [Currenlly amended) The network security method as scl forth in claim 4, further 
comprising: 

allowing the packet of inbound traffic to bypass the firewall if the destination port has- 
I matchcs w ith the se rver port . 



I 3. ('Currently amended) The network security system as set forth in claim 1 . wherein the 
internal permitted port r . lorage regintCTV . firewall 11 cm 1 d c de\ ice skres Ihe ex'tacled n romiai 101 1 
about the server port if the server port is determined to be opened. A 

1 4. (Previously presented) The network security system as set forth in claim 1 , wherein 
the extracted information about the server port is deleted from the internal permitted port storage 
if the server port is determined to be closed. 



1 5. (£un^ntly_amended) The network_secwityjnethod a^setjbrthjn claim_4, further_ _y r""Tj 

including: 

registering storing the extracted information about the sever port in the internal permitted 
port storage if the server port is determined to be opened. 

1 6. (Previously presented) The network security method as set forth in claim 4, further 

including: 

deleting jho extracted informal ion abouMhc -urcr port from the internal permuted pot- 
storage if the server port is determined to be closed. 
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I 7 rt 'iirrci illy amended ) Hie conpnler recordable device as sel fotlh in claim [<\ 'Formatted 
wherein the method further including: 

roaiiiloriim slormg the ex traded information about the sever port in the internal permitted 
port storage if the server jx>tl is determined to be opened. 

I 8. ( Previously presented) The computer recordable device as set forth in claim 1 0, 
wherein the method Anther including: 

deleting the extracted information about the sever poit from the internal permitted port - Formatted: r 

storage if the server port is determined to be closed. 
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; I.9. (Xew) A network security system for permitting a trusted process using a firewall, the 

firewall protecting a corresponding network connection of a computer to a network by setting 

restrictions on information communicated between networks, comprising: 
j a port monitoring unit extracting information about a server port ..being used by a. network 

communication program; 
| an internal permitted program storage storing a list of programs permitted by the firewall, 

wherein the internal permitted program storage adds a program to the list by extracting 

lnfomiation about the program for which communication isjo ^permitted by the fircwal 1 ; and , 
a firewall flexible device determining whether the server port is opened or closed and 

whether the network communication program is registered in the list of programs stored in the 

internal pentnlled program slorage; 
; wherein die firewall flexible device .automatically, storing the extracted information about 

the server port in an internal permitted port storage if the server port is opened and the network 

communication program is registered in the list of programs stored in the internal permitted 

program storage; 

wherein the firewall flexible device determines whether a destination port of a packet of 
inbound traffic matches with the server port and blocks die packet of inbound traffic if the 
destination port does not match with the server port. . 

20. (Xew) The network security system as set forth in claim 

wherein the firewall flexible device deletes the extracted information about the server 
port from the internal permitted port storage if the server port is determined to be closed^ _ 

21 . (Xew) The network security system as set forth in claim J9, _ «- 

wherein the information about the program includes information about at least one of a 

program name, an onlirc palh ofihe program, ai.d a program iiash value. 
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22. (Xew) The network security system as set forth in claim 19, wherein the information 
about the server port includes information about at least one of an entire path of the program, a 
protocol, and a pent. 

Formatted 

23. (Xew) A network security method of permitting a trusted process using a firewall, the*- Formatted: line spdeiny: Multiple in n 
firewall prolccling a eorrespondii ig neiwvit ciiuceiioii of a computer U> a network by selling 

restrictions on information communicated between networks, comprising: 

storing in an internal permitted program storage a list of programs permitted by the 
firewall; 

extracting information about a server port being used by a network communication 

program; 
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determining whether the network communication program is registered in the list of" 

programs stored in the internal permitted program storagqand whether the server port isopened 

or closed; 

automatically storing the extracted information about the server port in an internal 
permitted port storage if the network eomrmiiie.iroii program is registered in the list of programs 
stored in the internal permitted program storage and the server port is opened; 

determining whether a destination port of a packet of inbound traffic matches with the 
server port; and 

blocking the packet of inbound traffic if the destination port does not match with the 
server pott ; ; -v 

24. (New) The network security method as set Jorthin claim_2_3, where ii\ the method_ 
further comprises deleting the information about the server port used by the network 
communication program if the server port is determined to be closed^ _ 



p sparing: Multiple I 



25. (New^T^networkjsecurityjneth^d a^setjbrthjn claim_2_3, wherein the information 



about the program includes information about at least one of a program name, an entire path of ^ 
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the program, and a program hash value. 

j ^ew^Tl^net^ork^ecurityjnethod asset Jbrtiiiri cl_aim_23, wherein the mformation_ 

of the server port includes information about at least one of an entire path of the program, a 
protocol, and a port. 

27 . (New) The firewall as set forth in claim 1 6, 

wherein die firewall flexible device allows flic packet of inbound traffic to bypass the 
firewall if the destination port matches with the server port. 

28. (New) The method as set forth in claim 20, further comprising: 

allowing the packet of inbound traffic to bypass the firewall if the destination port 
matches with the server port. 
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